Commit Graph

5786 Commits

Author SHA1 Message Date
1seal
f215e513de proxy: bind bearer realms to upstream trust boundary
bind proxy-mode bearer realms to the upstream trust boundary before sending credentials, move challenge filtering behind the auth manager, and use golang.org/x/net/publicsuffix for registrable-domain handling.
2026-03-30 18:27:47 +03:00
Milos Gajdos
78a447df8e fix: nil-check scheduler in proxyingRegistry.Close() (#4805) 2026-03-07 13:08:11 -08:00
Milos Gajdos
43a380e1e1 build(deps): bump docker/metadata-action from 5 to 6 (#4810) 2026-03-06 08:26:39 -08:00
Milos Gajdos
c4e0be6045 build(deps): bump docker/bake-action from 6 to 7 (#4809) 2026-03-06 08:26:25 -08:00
dependabot[bot]
33bb5f601c build(deps): bump docker/bake-action from 6 to 7
Bumps [docker/bake-action](https://github.com/docker/bake-action) from 6 to 7.
- [Release notes](https://github.com/docker/bake-action/releases)
- [Commits](https://github.com/docker/bake-action/compare/v6...v7)

---
updated-dependencies:
- dependency-name: docker/bake-action
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-03-06 07:29:11 +00:00
João Pereira
dcd6df9644 build(deps): bump docker/setup-buildx-action from 3 to 4 (#4811) 2026-03-06 07:28:11 +00:00
dependabot[bot]
6b6081e39c build(deps): bump docker/setup-buildx-action from 3 to 4
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3 to 4.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-03-06 01:14:21 +00:00
dependabot[bot]
d56f9dae3d build(deps): bump docker/metadata-action from 5 to 6
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5 to 6.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](https://github.com/docker/metadata-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-03-06 01:14:16 +00:00
Milos Gajdos
90786adc26 build(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (#4800) 2026-03-04 21:49:46 -08:00
Milos Gajdos
bfd3cea551 build(deps): bump docker/login-action from 3 to 4 (#4807) 2026-03-04 21:46:55 -08:00
dependabot[bot]
887c227241 build(deps): bump docker/login-action from 3 to 4
Bumps [docker/login-action](https://github.com/docker/login-action) from 3 to 4.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-03-05 01:13:13 +00:00
Milos Gajdos
aa6ea57a94 build(deps): bump github/codeql-action from 4.32.2 to 4.32.5 (#4806) 2026-03-04 13:46:09 -08:00
dependabot[bot]
d1f8bd9c92 build(deps): bump github/codeql-action from 4.32.2 to 4.32.5
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.2 to 4.32.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v4.32.2...v4.32.5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-03-03 01:39:15 +00:00
Joonas Bergius
021b69d5a6 fix: nil-check scheduler in proxyingRegistry.Close()
When proxy TTL is set to 0, `NewRegistryPullThroughCache`
skips creating a `TTLExpirationScheduler`. When `Close()`
calls `pr.scheduler.Stop()`, it causes causing a nil pointer
dereference panic.

Signed-off-by: Joonas Bergius <joonas@defenseunicorns.com>
2026-03-01 19:59:20 -06:00
dependabot[bot]
fca6b9f855 build(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 6.0.0 to 7.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-02-27 01:13:05 +00:00
Milos Gajdos
ab67ffa0bd vendor: github.com/go-jose/go-jose/v4 v4.1.3 (#4790) 2026-02-12 15:03:13 -08:00
Milos Gajdos
8f5090660a vendor: github.com/docker/go-events 605354379745 (#4791) 2026-02-12 15:02:58 -08:00
Sebastiaan van Stijn
eba1fb4803 vendor: github.com/docker/go-events 605354379745
full diff: e31b211e4f...6053543797

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 19:21:25 +01:00
Sebastiaan van Stijn
01a853e429 go.mod: remove outdated comment
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 19:15:36 +01:00
Sebastiaan van Stijn
2a52e9015f vendor: github.com/go-jose/go-jose/v4 v4.1.3
No longer has dependencies

full diff: https://github.com/go-jose/go-jose/compare/v4.0.5...v4.1.3

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 19:12:01 +01:00
Milos Gajdos
3cf5a08615 modernize code (#4784) 2026-02-12 10:06:32 -08:00
Milos Gajdos
423d1213d3 fix: sync parent dir to ensure data is reliably stored (#4774) 2026-02-12 10:03:57 -08:00
Milos Gajdos
1cc061570c vendor: github.com/bshuster-repo/logrus-logstash-hook v1.1.0 (#4788) 2026-02-12 10:03:20 -08:00
Milos Gajdos
c52376bcb9 vendor: github.com/spf13/cobra v1.10.2 (#4789) 2026-02-12 10:02:41 -08:00
Milos Gajdos
afaf0c0aa7 fix: prefer otel variables over hard coded service name (#4771) 2026-02-12 10:02:03 -08:00
Sebastiaan van Stijn
3e841a3d78 vendor: github.com/spf13/cobra v1.10.2
full diff:

- https://github.com/spf13/cobra/compare/v1.8.0...v1.10.2
- https://github.com/spf13/pflag/compare/v1.0.5...v1.0.10

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 18:45:18 +01:00
Sebastiaan van Stijn
10e0e8e4c0 vendor: github.com/bshuster-repo/logrus-logstash-hook v1.1.0
- adds go.mod
- DefaultFormatter now uses RFC3339Nano as default

full diff: https://github.com/bshuster-repo/logrus-logstash-hook/compare/v1.0.0...v1.1.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 18:37:03 +01:00
Sebastiaan van Stijn
d2398c56f2 vendor: github.com/klauspost/compress v1.18.4
full diff: https://github.com/klauspost/compress/compare/v1.17.11...v1.18.4

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 09:35:31 -08:00
Sebastiaan van Stijn
c4a0bd3fe9 vendor: github.com/opencontainers/image-spec v1.1.1
full diff: https://github.com/opencontainers/image-spec/compare/v1.1.0...v1.1.1

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 09:34:56 -08:00
Sebastiaan van Stijn
f18b8d707e fix "prealloc" linting
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 18:28:58 +01:00
Sebastiaan van Stijn
775d3734eb modernize code
Automated fixing, using Go's "modernize" tool;

    go install golang.org/x/tools/go/analysis/passes/modernize/cmd/modernize@latest
    modernize -fix ./...

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 18:28:58 +01:00
Sebastiaan van Stijn
abc9debf41 vendor: github.com/docker/docker-credential-helpers v0.9.5
full diff: https://github.com/docker/docker-credential-helpers/compare/v0.8.2...v0.9.5

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 09:21:36 -08:00
ningmingxiao
b4f2af3f60 fix: sync parent dir to ensure data is reliably stored
Co-authored-by: Sebastiaan van Stijn <github@gone.nl>
Signed-off-by: ningmingxiao <ning.mingxiao@zte.com.cn>
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 18:15:45 +01:00
ningmingxiao
5ddf7898fa use filepath instead of path
Signed-off-by: ningmingxiao <ning.mingxiao@zte.com.cn>
2026-02-12 18:14:53 +01:00
Sebastiaan van Stijn
9b79cf5105 vendor: golang.org/x/oauth2 v0.35.0
full diff: https://cs.opensource.google/go/x/oauth2/+/refs/tags/v0.28.0...refs/tags/v0.35.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 08:58:55 -08:00
Sebastiaan van Stijn
ae7c498d28 vendor: golang.org/x/time v0.14.0
full diff: https://cs.opensource.google/go/x/time/+/refs/tags/v0.6.0...refs/tags/v0.14.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 08:58:55 -08:00
Sebastiaan van Stijn
87a9711c88 vendor: golang.org/x/crypto v0.48.0, golang.org/x/net v0.50.0
full diff: https://cs.opensource.google/go/x/crypto/+/refs/tags/v0.36.0...refs/tags/v0.48.0
full diff: https://cs.opensource.google/go/x/net/+/refs/tags/v0.38.0...refs/tags/v0.50.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 08:58:55 -08:00
Sebastiaan van Stijn
aebf0612ee vendor: golang.org/x/text v0.34.0
full diff: https://cs.opensource.google/go/x/text/+/refs/tags/v0.23.0...refs/tags/v0.34.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 08:58:55 -08:00
Sebastiaan van Stijn
3e3e153900 vendor: golang.org/x/sys v0.41.0
full diff: https://cs.opensource.google/go/x/sys/+/refs/tags/v0.31.0...refs/tags/v0.41.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 08:58:55 -08:00
Sebastiaan van Stijn
00464063d5 vendor: github.com/sirupsen/logrus v1.9.4
full diff: https://github.com/sirupsen/logrus/compare/v1.9.3...v1.9.4

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 08:57:45 -08:00
Sebastiaan van Stijn
f5d656e686 drop support for go1.23
go1.23 is EOL since August 2025 (when go1.25 was released), and (indirect)
dependencies start to require it.

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 04:22:51 -08:00
Sebastiaan van Stijn
60d2cd5c44 update to go1.25.7, alpine 3.23
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 04:22:51 -08:00
Sebastiaan van Stijn
efd7ffb9c9 Dockerfile: update tonistiigi/xx v1.9.0
Also add a well-formatted comment (for outputing in `docker build --call=outline .`);

    docker build -q --call=outline .
    BUILD ARG        VALUE                                     DESCRIPTION
    GO_VERSION       1.23.7
    ALPINE_VERSION   3.21
    XX_VERSION       1.9.0                                     version of the tonistiigi/xx utility to use.
    PKG              github.com/distribution/distribution/v3
    LDFLAGS          -s -w
    BUILDTAGS

full diff: https://github.com/tonistiigi/xx/compare/v1.6.1...v1.9.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-12 04:22:51 -08:00
Milos Gajdos
2cd77a0f4c update golangci-lint to v2.9 and fix linting issues (#4780) 2026-02-11 13:29:01 -08:00
Sebastiaan van Stijn
f5e1a8931a update golangci-lint to v2.9 and fix linting issues
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2026-02-11 10:10:07 +01:00
Milos Gajdos
2a2c13c5c8 build(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#4768) 2026-02-10 12:36:56 -08:00
Milos Gajdos
f2c2cf37bc build(deps): bump github/codeql-action from 4.31.10 to 4.32.2 (#4778) 2026-02-06 13:04:07 -08:00
dependabot[bot]
9e37767046 build(deps): bump github/codeql-action from 4.31.10 to 4.32.2
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.10 to 4.32.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v4.31.10...v4.32.2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-02-06 01:13:59 +00:00
kub3let
abcf7ebec6 fix: prefer otel variables over hard coded service name
Signed-off-by: kub3let <95883234+kub3let@users.noreply.github.com>
2026-01-25 21:39:01 +01:00
dependabot[bot]
3658dc56d9 build(deps): bump actions/checkout from 6.0.1 to 6.0.2
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](https://github.com/actions/checkout/compare/v6.0.1...v6.0.2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-01-23 01:13:29 +00:00